The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Ubuntu

libvterm: denial of service via Out-of-memory
An attacker can trigger a fatal error via Out-of-memory of libvterm, in order to trigger a denial of service...
CVE-2018-20786, USN-4309-1, VIGILANCE-VUL-31867
Ubuntu 18.04: security improvement via Apache httpd TLSv1.3 Support
The security of Ubuntu 18.04 was improved via Apache httpd TLSv1.3 Support...
USN-4307-1, VIGILANCE-VUL-31823
Ubuntu: information disclosure via linux-image-4.15.0
An attacker can bypass access restrictions to data via linux-image-4.15.0 of Ubuntu, in order to obtain sensitive information...
1862840, CERTFR-2020-AVI-154, CVE-2020-8832, USN-4302-1, VIGILANCE-VUL-31802
gd: information disclosure via gdImageCreateFromXbm
An attacker can bypass access restrictions to data via gdImageCreateFromXbm() of gd, in order to obtain sensitive information...
CVE-2019-11038, openSUSE-SU-2020:0332-1, SSA:2020-083-01, SUSE-SU-2020:0623-1, USN-4316-1, USN-4316-2, VIGILANCE-VUL-31749
SQLite: denial of service via isAuxiliaryVtabOperator
An attacker can trigger a fatal error via isAuxiliaryVtabOperator() of SQLite, in order to trigger a denial of service...
CVE-2020-9327, USN-4298-1, VIGILANCE-VUL-31660
PHP: infinite loop via php-fpm Non-blocking STDIN Stream
An attacker can trigger an infinite loop via php-fpm Non-blocking STDIN Stream of PHP, in order to trigger a denial of service...
CVE-2015-9253, USN-4279-1, USN-4279-2, VIGILANCE-VUL-31621
libgd: NULL pointer dereference via gdImageClone
An attacker can force a NULL pointer to be dereferenced via gdImageClone() of libgd, in order to trigger a denial of service...
CVE-2018-14553, DLA-2106-1, openSUSE-SU-2020:0332-1, SSA:2020-083-01, SUSE-SU-2020:0594-1, SUSE-SU-2020:0623-1, USN-4316-1, USN-4316-2, VIGILANCE-VUL-31617
Linux kernel: infinite loop via ext4_protect_reserved_inode
An attacker can trigger an infinite loop via ext4_protect_reserved_inode() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2020-AVI-119, CERTFR-2020-AVI-124, CERTFR-2020-AVI-130, CERTFR-2020-AVI-191, CVE-2020-8992, openSUSE-SU-2020:0336-1, SUSE-SU-2020:0511-1, SUSE-SU-2020:0558-1, SUSE-SU-2020:0559-1, SUSE-SU-2020:0560-1, SUSE-SU-2020:0580-1, SUSE-SU-2020:0649-1, SUSE-SU-2020:0667-1, SUSE-SU-2020:0688-1, USN-4318-1, USN-4324-1, VIGILANCE-VUL-31611
libexif: integer overflow via exif-data.c
An attacker can trigger an integer overflow via exif-data.c of libexif, in order to trigger a denial of service, and possibly to run code...
CVE-2019-9278, DLA-2100-1, DSA-4618-1, openSUSE-SU-2020:0264-1, SUSE-SU-2020:0457-1, SUSE-SU-2020:0458-1, SUSE-SU-2020:14294-1, USN-4277-1, VIGILANCE-VUL-31543
QEMU: out-of-bounds memory reading via snprintf
An attacker can force a read at an invalid address via snprintf() of QEMU, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2020-8608, DLA-2142-1, DLA-2144-1, openSUSE-SU-2020:0468-1, RHSA-2020:0889-01, RHSA-2020:1208-01, RHSA-2020:1209-01, RHSA-2020:1351-01, RHSA-2020:1352-01, RHSA-2020:1379-01, RHSA-2020:1403-01, USN-4283-1, VIGILANCE-VUL-31540
Our database contains other pages. You can request a free trial to read them.

Display information about Ubuntu: